Lucene search
K
WpvulndbRecent

14602 matches found

WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.14 views

WooCommerce - Store Exporter < 2.7.2.1 - Reflected XSS

Description The plugin does not sanitise and escape the filter parameter before outputting it back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.2AI score0.00354EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.20 views

YOP Poll < 6.5.27 - Unauthenticated Vote Manipulation via Race Condition

Description The plugin is affected by a race condition, allowing unauthenticated users to vote multiple times on a poll even when it's configured to only allow one vote per person...

5.3CVSS7.1AI score0.00376EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.14 views

User Avatar < 1.4.12 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.1AI score0.00412EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.20 views

Webpushr < 4.35.0 - LFI via CSRF

Description The plugin does not have CSRF check in its wppsavesettings function, and does not validate the menu parameter, allowing attackers to make logged in users admins perform LFI attacks via CSRF...

8.8CVSS7AI score0.00316EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.17 views

Contact Form Email < 1.3.44 - Editor+ Stored Cross-Site Scripting

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Create a form and navigate to...

6.1CVSS5.8AI score0.00455EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.17 views

WP Not Login Hide <= 1.0 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Visit the "WPNLH" interface...

4.8CVSS4.8AI score0.00425EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.21 views

Advanced Page Visit Counter < 8.0.1 - Contributor+ SQLi

Description The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by Contributor and above users...

9.8CVSS7.7AI score0.0055EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.28 views

Qi Addons For Elementor < 1.6.5 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS6.1AI score0.00409EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.18 views

WP Google My Business Auto Publish < 3.8 - Multiple CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in admins delete transients and update post metadata via CSRF attacks...

8.8CVSS7AI score0.00272EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/14 12:0 a.m.13 views

WP Event Manager < 3.1.43 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6AI score0.00437EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.17 views

Contact Forms by Cimatti < 1.6.1 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.0027EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.13 views

Popup box < 3.8.6 - Admin+ Stored XSS in Categories

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Go to "Popup Box Categories" 2...

4.8CVSS5.9AI score0.0045EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.11 views

Popup box < 3.8.6 - Admin+ Stored XSS in Popup Settings

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Add a new Popup 2. In the...

4.8CVSS5.9AI score0.0045EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.24 views

Church Admin < 3.8.0 - Server-Side Request Forgery (SSRF)

Description Server-Side Request Forgery SSRF vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 3.7.56...

5.5CVSS7.2AI score0.00421EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.9 views

Easy Newsletter Signups <= 1.0.4 - Admin+ SQLi

Description The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin PoC 1. From the "Easy Newsletter Signups", select an email address and then click "Export to CSV" 2. Intercept...

7.2CVSS7.8AI score0.00958EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.17 views

Simply Excerpts <= 1.4 - Admin+ Stored XSS

Description The plugin does not sanitize and escape some fields in the plugin settings, which could allow high-privilege users such as an administrator to inject arbitrary web scripts even when the unfilteredhtml capability is disallowed for example in a multisite setup. PoC Put the following...

4.8CVSS6.8AI score0.00424EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.53 views

WP Fastest Cache < 1.2.2 - Unauthenticated SQL Injection

Description The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users. PoC 1. Visit WP Fastest Cache Settings. Ensure "Cache System" is enabled, and "Logged-in Users" is disabled. Click "Submit"...

7.5CVSS8.1AI score0.73708EPSS
Exploits11References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.18 views

Profile Builder < 3.10.4 - Plugins Activation/Deactivation CSRF

Description The plugin does not have CSRF checks when activating and deactivating plugins, which could allow attackers to make logged in users perform such actions via CSRF attacks...

8.8CVSS7AI score0.00254EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.22 views

eCommerce Product Catalog Plugin for WordPress < 3.3.26 - Products Deletion via CSRF

Description The plugin does not have CSRF checks in some of its admin pages, which could allow attackers to make logged-in users perform unwanted actions via CSRF attacks, such as delete all products PoC Make a logged in admin open the URL below...

6.5CVSS7AI score0.00283EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.11 views

Word Balloon < 4.20.3 - Avatar Removal via CSRF

Description The plugin does not protect some of its actions against CSRF attacks, allowing an unauthenticated attacker to trick a logged in user to delete arbitrary avatars by clicking a link. PoC Make a logged in admin open https://example.com/wp-admin/options-general.php?page=word-balloon=delet...

6.5CVSS7.3AI score0.00309EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.11 views

Stop Referrer Spam < 1.3.1 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00309EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.19 views

PowerPress Podcasting < 11.0.7 - Contributor+ SSRF

Description The plugin does not validate a parameter before making a request to it via the powerpressmediainfo AJAX action, which could allow Contributor and above role to perform SSRF attacks...

6.5CVSS7AI score0.00381EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.13 views

Funnelforms Free < 3.4.2 - Form Deletion/Duplication via CSRF

Description The plugin does not have CSRF checks on some of its form actions such as deletion and duplication, which could allow attackers to make logged in admin perform such actions via CSRF attacks PoC Make a logged in admin open an HTML page with the form below Deletion This will delete the...

6.5CVSS6.9AI score0.0027EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.12 views

Advanced iFrame < 2023.9 - Contributor+ Stored XSS

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.4CVSS6.1AI score0.00558EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.17 views

Frontend File Manager < 22.7 - Editor+ Arbitrary File Download

Description The plugin has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as wp-config.php PoC 1 Create new post with this shortcode - ffmwp 2 Go to new post and upload any file 3 After that go to main page of plugin for users...

6.5CVSS9.7AI score0.01048EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.18 views

Autolinks Manager < 1.10.05 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00261EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.20 views

Uploading SVG, WEBP and ICO files <= 1.2.1 - Author+ Stored XSS via SVG

Description The plugin does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads. PoC As an author, upload an SVG file with malicious JavaScript: Access the file through its URL to see XSS...

6.1CVSS6.1AI score0.00932EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.10 views

AMP+ Plus <= 3.0 - Reflected Cross Site Scripting

Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin PoC https://example.com/?p=1=%22%3E%3CScRiPt%3Ealert%28%27XSS%27%29%3C%2FsCrIpT%3E...

6.1CVSS6.3AI score0.00412EPSS
Exploits1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.22 views

Filr – Secure document library < 1.2.3.6 - Author+ RCE via file upload with phar ext

Description The plugin is vulnerable from an RCE Remote Code Execution vulnerability, which allows the operating system to execute commands and fully compromise the server on behalf of a user with Author-level privileges. PoC 1 Go to main dashboard of plugin...

8.8CVSS7.8AI score0.02024EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/13 12:0 a.m.11 views

BSK Contact Form 7 Blacklist <= 1.0.1 - Reflected Cross-Site Scripting

Description The plugin does not sanitise and escape the insertedcount parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin PoC Make a logged in admin open the URL below...

6.1CVSS6.3AI score0.00444EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/11/12 12:0 a.m.17 views

Enhanced Admin < 1.17 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00312EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/12 12:0 a.m.18 views

Mobile Banner < 1.6 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00309EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/12 12:0 a.m.9 views

ShiftController Employee Shift Scheduling < 4.9.24 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00264EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.14 views

Welcart e-Commerce < 2.9.5 - Subscriber+ Arbitrary File Upload

Description The plugin does not validate files to be uploaded, as well as does not have authorisation and CSRF in an AJAX action handling such upload. As a result, any authenticated users, such as subscriber could upload arbitrary files, such as PHP on the server PoC Setup As admin: - Go the the...

8.8CVSS7.4AI score0.00479EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.14 views

Welcart e-Commerce < 2.9.5 - Unauthenticated PHP Object Injection

Description The plugin unserializes user input from cookies, which could allow unautehtniacted users to perform PHP Object Injection when a suitable gadget is present on the blog PoC To simulate a gadget chain, put the following code in a plugin: class Evil public function wakeup : void...

9.8CVSS7.8AI score0.01253EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.11 views

TS Webfonts for さくらのレンタルサーバ < 3.1.3 - Font Settings Change via CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

4.3CVSS6.5AI score0.00251EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.17 views

Apollo13 Framework Extensions < 1.9.1 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.7AI score0.00385EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.14 views

Email Templates < 1.4.3 - Email Sending via CSRF

Description The plugin is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.4.2. This is due to missing or incorrect nonce validation on the sendtestemail function. This makes it possible for unauthenticated attackers to send test emails via a forged request granted the...

8.8CVSS6.1AI score0.00277EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.8 views

TPG Redirect < 1.0.8 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00272EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.19 views

Simple Giveaways < 2.46.1 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS7.1AI score0.00306EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.13 views

TS Webfonts for さくらのレンタルサーバ < 3.1.1 - Admin+ Stored Cross-Site Scripting

Description The plugin does not sanitise and escape some parameters, which could allow users with a role of Admin to perform Cross-Site Scripting attacks, for example on multisite instances...

6.1CVSS6.2AI score0.00482EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/10 12:0 a.m.21 views

Welcart e-Commerce < 2.9.5 - Reflected XSS

Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin PoC Make a logged in admin open the URL below:...

6.1CVSS6.3AI score0.00471EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/09 12:0 a.m.18 views

EventON < 2.2 - Admin + Stored HTML Injection

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored HTML Injection attacks even when the unfilteredhtml capability is disallowed. PoC 1. Go to the Virtual Event - This is a virtual online event. 2...

4.8CVSS6.8AI score0.0043EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/09 12:0 a.m.13 views

WP Reactions Lite < 1.3.9 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS6.8AI score0.00322EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/09 12:0 a.m.18 views

Simple Site Verify < 1.0.8 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS6AI score0.00448EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/08 12:0 a.m.14 views

Add to Calendar Button < 1.5.1 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.7AI score0.00409EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/08 12:0 a.m.19 views

Basic Interactive World Map < 2.7 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS6AI score0.00397EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/08 12:0 a.m.20 views

IdeaPush < 8.53 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.6AI score0.00397EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/08 12:0 a.m.14 views

Medialist < 1.4.0 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.7AI score0.00395EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2023/11/08 12:0 a.m.13 views

UpdraftPlus: WordPress Backup & Migration < 1.23.11 - Google Drive Storage Update via CSRF

Description The plugin is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.23.10. This is due to a lack of nonce validation and insufficient validation of the instanceid on the 'updraftmethod-googledrive-auth' action used to update Google Drive remote storage...

5.4CVSS6.1AI score0.00218EPSS
Exploits0Affected Software1
Total number of security vulnerabilities14602